Search results for: Pull Request

Dependabot alerts will now be easier to prioritize with a new “Most Important” sort. For the alerts repository list view, by default, alerts will be sorted in a way to…

Read about the six key themes, and tips for each, that ensure sustainable and healthy open source communities.

A Little Game Called Mario is an open source, collectively developed hell project. Anyone and everyone is welcome to contribute their unique talents to make both the player and developer experience more enjoyable. Find out how the collective leverages GitHub Actions to manage this wonderful little community.

High-quality Git commits are the key to a maintainable and collaborative open- or closed-source project. Learn strategies to improve and use commits to streamline your development process.

Maintainers answer your questions about how to manage an open source project that grows into a community.

Pull Requests will now load more quickly thanks to deferred syntax highlighting. When you first land on a Pull Request’s Conversation or Files tab we will show plain text diffs,…

This marks 1️⃣ year since our initial private beta announcement! 🎉 Today’s Changelog brings you the ability to bulk add items to projects and GraphQL API improvements! 🪷 Bulk add…

GitHub is excited to announce the release of CodeQL queries that implement the standards CERT C++ and AUTOSAR C++. These queries can aid developers looking to demonstrate ISO 26262 Part 6 process compliance.

GitHub’s Advisory Database now supports listing malware advisories. You can see them by searching “type:malware” on https://github.com/advisories. If you have enabled Dependabot alerts on your repositories, GitHub will send Dependabot…

The Dependency Review GitHub Action, which checks if pull requests introduce a dependency with a known vulnerability, now supports configuration based on vulnerability severity and license type. The following configuration…

Back in March, we introduced a new “For you” feed in Public Beta, to help you discover interesting projects across GitHub. Today, we are sharing a few updates to this…

Discover how GitHub thinks about browser support, look at usage patterns, and learn about the tools we use to make sure our customers are getting the best experience.

Dependabot is generally available in GitHub Enterprise Server 3.5. Here is how to set up Dependabot on your instance.

We’re excited to announce that we’re open sourcing our Identity and Access Management solution: Entitlements.

Available in public beta today, we’re announcing Achievements as a new way to commemorate milestones on GitHub.

Organization owners and repository admins can now require developers to sign off on commits made through GitHub’s web interface. Also, it is now easier for developers to complete a signoff…

A personal story about building the feature you want and sharing it with the world.

Custom repository roles are now GA for GitHub.com and Enterprise Server 3.5. Organization admins can create custom repository roles available to all repositories in their organization. Roles can be configured…

The Rust community can now discover, report, and prevent security vulnerabilities.

CI/CD and workflow automation are native capabilities on GitHub platform. Here’s how to start using them and speed up your workflows.

Dependabot version updates help you keep your dependencies up-to-date by opening pull requests automatically when new versions are available. With this release, you can now more easily enable and configure…